privacy and self-sovereign identity

[synctext]

draft thesis direction

Investigate the revealing of privacy-sensitive attributes of your identity. Should be usable even in the sensitive medical domain with electronic patient files.

First step, find related work in this area (irma, zero-knowledge, zkSNARKs)

For next meeting: gather all general docs, weforum Djuri his thesis, etc. in .PDF form.

[synctext]

Facinating 2012 report from World Economic Forum

To restore trust, this report proposes three separate, but related
questions, which need to be addressed by all stakeholders:

1. Protection and Security: How can personal data be protected
   and secured against intentional and unintentional security
   breach and misuse?
2. Rights and Responsibilities for Using Data: How can rights
   and responsibilities, and therefore appropriate permissions, be
  established for personal data to flow in ways that both respect
  its context and balance the interests of all stakeholders?
3. Accountability and Enforcement: How can organizations
  be held accountable for protecting, securing and using
  personal data, in accordance with the rights and established
  permissions for the trusted flow of data?

Our government is already conducting various initiatives within this area. See this letter to parlement about the various ongoing matters.

[synctext]

10 principles: http://www.lifewithalacrity.com/2016/04/the-path-to-self-soverereign-identity.html active group: http://www.weboftrust.info/ key paper: http://www.weboftrust.info/downloads/dpki.pdf paper: https://github.com/WebOfTrustInfo/rebooting-the-web-of-trust-fall2016/blob/master/final-documents/reputation-toolkit.pdf paper: https://github.com/WebOfTrustInfo/ID2020DesignWorkshop/blob/master/final-documents/physician-patient-relationship.pdf MIT Pentland paper: explaining slides and .pdf http://dl.acm.org/citation.cfm?id=2867781

Respect framework, with P2P reputation mechanism :

[AngelaBarrio]

Read literature:

• The inevitable rise of self-sovereign identity - Sovrin Foundation, 2016
• Towards self-sovereign identity using blockchain technology - D. Baars, 2016
• Portable trust: Biometric-based authentication and blockchain storage for self-sovereign identity systems - Hammudoglu, J. et al., 2017
• Decentralizing privacy: using blockchain to protect personal data - Zyskind et al., 2015
• Healthcare data gateways: foud healthcare intelligence on blockchain with novel privacy risk control - Yue, X. et al., 2016
• A case study for blockchain in healthcare: "medrec" prototype for electronic health records and medical research data - Ekblow et al., 2016
• Rethinking personal data: strengthening trust - World economic forum, 2012
• Portable reputation toolkit use cases - Allen et al., 2016
• The path to self-sovereign identity - Allen, C. et al., 2016

Attended events:

• Techruption meeting (June 15)
• ECP special Blockchain: wet- en regelgeving (June 29)

[synctext]

W3C is creating a group on self-sovereign Identity matters. However, seems too heavy and leaning towards a browser-only perspective.

Their charter

Please also read detailed (privacy-minded) crypto papers:

• example math-focused thesis: https://repository.tudelft.nl/islandora/object/uuid%3A17adc7bd-5c82-4ad5-b1c8-a8b85b23db1f
• the uport implementation whitepaper
• Hawk: The blockchain model of cryptography and privacy-preserving smart contracts
• Blindly Signed Contracts: Anonymous On-Blockchain and Off-Blockchain Bitcoin Transactions.
• Enigma: Decentralized computation platform with guaranteed privacy
• Efficient Zero-Knowledge Contingent Payments in Cryptocurrencies Without Scripts.
• Rational Zero: Economic Security for Zerocoin with Everlasting Anonymity.
• Blockchain & infrastructure (identity, data security)
• also understand the fundamental from the fault tolerance viewpoint

[synctext]

Key paper discussing 15 years of decentralization with 189 citations from the literature {including TribBler} Titled: "Systematizing Decentralization and Privacy: Lessons from 15 Years of Research and Deployments"

This paper is a beautiful version of 3 years earlier work by TUDelft students https://cryptome.org/2014/04/tor-vulns-attacks.pdf titled "The fifteen year struggle of decentralizing privacy-enhancing technology"

After 15 years of struggling scientist we now see the emergence of numerous standards group which also make sadly little progress. https://github.com/WebOfTrustInfo/ID2020DesignWorkshop/blob/master/topics-and-advance-readings/DID-Whitepaper.md#decentralized-identifiers-dids-and-decentralized-identity-management-didm

• W3C Credentials Community Group
• XDI.org Registry Working Group (XRWG)
• Rebooting the Web of Trust Group
• ISO/TC 307 - Blockchain and distributed ledger technologies

[synctext]

Real patient open dataset: A sample anonymized data set, including 5,000 patients and 500,000 observations, is available for the following Platform releases (note that demo data for OpenMRS Platform releases and will not work for OpenMRS Reference Application releases)

[synctext]

About self-sovereign IDs.. @qstokkink can you please provide us with a reference to the Stanford paper which is not that popular but seems to have a the right crypto magic we need for key attestation and zero-knowledge proof fun?

[qstokkink]

https://crypto.stanford.edu/%7Edabo/papers/2dnf.pdf

[AngelaBarrio]

Read literature:

• Enigma: Decentralized computation platform with guaranteed privacy
• Systematizing Decentralization and Privacy: Lessons from 15 Years of Research and Deployments
• The fifteen year struggle of decentralizing privacy-enhancing technology
• Evaluating 2-DNF Formulas on Ciphertexts

[AngelaBarrio]

Read literature:

• Wat moet ik nou met blockchain? - Idius Felix, 2017
• De kwaliteit van het elektronisch patientendossier van huisartsen gemeten - NIVEL,2011
• Several presentations and news articles (MedMij, ZorgLog, UMCG blockchain vision etc)

Meeting with Idius Felix. He advised me to look for another dmain because I lack domain knowledge about healthcare. He thought my research question was too broad.

Tried to contact Ron van den Bosch (UMCG) but he retired this month.

[AngelaBarrio]

research-proposal-seminar.pdf

[synctext]

Felix consult; the electronic patient file does not exist. Spread out across hospital, special clinics, general practitioner, elderly care, etc. Future direction:

• broader, beyond medical. Generic attribute hiding.
• narrow, focus on 1 medical case study. Align with the app world.
• narrow, focus on the electronic switching point of EPD.
• narrow, focus on 1 group, like general practitioners. Existing open source: company in this area](http://www.elatro.nl/opensource) and ideas.
• Shift to implementation + policy of self-sovereign ID, internal affairs ministry

ToDo: Learn QT for Android and Python.

[AngelaBarrio]

Activities:

• Python course at Codecademy (currently at 67%)
• Read 2 papers about TrustChain

[synctext]

Medicit input: self-sovereign identity where patient can see all available data, append corrections, control sharing, and control removal. Defined format and medical patient data. Demo app https://mxi.nl/upload/documenten/presentatie_doorontwikkeling_blockchain_zin_izo_mxi.pdf

Next meeting: first QT app, expand with MijnZorgLog basic features. Possible future steps: Trustchain + self-sovereign ID, IPv8. Smartphone becomes your personal medical data server. Problem, reliability, backup, and theft-locking. Brainstorm idea: spread your encrypted patient files among social network. Features: remotely disable, your trustchain locks, trustchain goes into recovery mode, recover with friends (mechanism to support 1-5 friends)?.

This is the Facebook account recovery using trusted contacts:

1 Tap Forgot Password? on the login page.
2 If prompted, find your account by entering your email, phone, username or full name and tap Search.
3 Look at the list of email addresses listed on your account. If you don't have access to any of these, tap No longer have access to these?
4 Enter a new email or phone that you know you can access and tap Continue.
5 Tap Reveal My Trusted Contacts and type the full name of one of your trusted contacts.
6 You'll see a set of instructions that includes a URL. The URL contains a special security code that only your trusted contacts can access. Call your friends and give them the URL so that they can open the link and give the security code to you.
7 Use the security codes from your trusted contacts to access your account.

[synctext]

Please read fascinating thesis from Yesterday. It links various domains, excellent problem description. No code, no engineering. opportunities for blockchain based identities in healthcare THESIS Included illustration, copied from above thesis:

[AngelaBarrio]

Activities:

• Finished Python course
• Started Android app course
• Read report "Fifth Annual Study on Medical Identity Theft"
• Read paper "Exploring medical identitiy theft"
• Read paper "Cybersecurity in healthcare: A systematic review of modern threats and trends"

[synctext]

• Smartphone becomes your personal medical data server. Problem, reliability, backup, and theft-locking.
• medical records storage
• no not store on a single device
• decentralised trusted data storage environment: use your friends
• possible solution: threshold encryption, old 1992 paper, 2001, "recent" 2006 work and 2008
• app dev suggestion tutorial

[qstokkink]

Good intros: A threshold key escrow scheme based on public key cryptosystem A Modular Approach to Key Safeguarding

Further reading and implementations: Strength in Numbers: Threshold ECDSA to Protect Keys in the Cloud Threshold Cryptography C Library Practical Threshold Signatures A JCA-based Implementation Framework for Threshold Cryptography

[AngelaBarrio]

Read literature:

• Threshold cryptosystems: Authentication and secret sharing (1992)
• Strength in Numbers: Threshold ECDSA to Protect Keys in the Cloud (2015)

[synctext]

Buzzword bingo for possible thesis title and storyline:

• Blockchain-based distributed tamper-proof filesystem using threshold encryption
• Smartphone-based blockchain storage primitive with theft locking, disaster recovery, side-channel protection, and distributed key storage using threshold encryption
• Blockchain-based medical file sharing protected using threshold encryption

Suggested ToDo:

• continue reading papers in more details
• try to find Python library for threshold encryption, try a 2 our of 3 prototype
• try to understand the possibility of going beyond signatures with encrypted block storage

This morning discussion inspired the following design. Simple party-trick also used in Enigma design by MIT for distributed encrypted storage. Simple designs like this might actually work!

[synctext]

• keeping busy with Distributed Algorithms course
• Student team Shamir secret sharing on Android
• elliptic curve detailed reading
• End-goal: still mentioned above, prototype self-sovereign identity where patient can see all available data, append corrections, control sharing, and control removal.
• ToDo next sprints;
  • [ ] 8page thesis draft
  • [ ] architecture + algorithm + experiment description
  • [ ] Create prototype and thesis in final 2 months (theft locking experiment, backup procedure, key storage at friends, loss recovery experiment)

[synctext]

please read https://link.springer.com/chapter/10.1007/978-3-319-67816-0_21

4 Definitions and Threat Model
We consider a setting in which users maintain attributes about themselves and require registrars to
vouch for these attributes. For example, in order to register the attribute “over 18 years old,” a user
reveals their identity to the government, who verifies their age.
Definition 1 (Passive/active verification)
Definition 2 (Attribute integrity)
Definition 3 (Attribute privacy)

[synctext]

Related work on zero-knowledge proof, Nature papers. Zero-Knowledge Nuclear Warhead Verification.

[AngelaBarrio]

Activities:

• Christmas holiday
• Finished Distributed algorithms lab
• Read paper "Who Am I? Secure Identity Registration on Distributed Ledgers" by Azouvi, Al-Bassam and Meiklejohn (2017)
• Started writing 8-page thesis draft. Mainly chapter on related work. Now on 5 pages.

[AngelaBarrio]

thesis_draft.pdf

[synctext]

The sole focus of this thesis are the following 2 research questions. Numerous other matters can be directly derived from them.

This question can be split into two subquestions:
R1: "How can accountability on access be guaranteed in an EMR?"
R2: "How can entries be validated by a patient as well as a healthcare provider in an EMR?"

do you need double-spending protection in your specific application domain, do you thus need to explain it? Four-part, complex sentence, with a lot of nuance, spread over several parts:

All data requests are evaluated and in case of a positive permission,
secure multiparty computation (sMPC) is used to process patient data without
risking patient privacy

Thesis chapter options

• Introduction
• The problem of sensitive medical data / Problem Description
• Prior work / background technology / crypto tutorial
• Requirements, specifications, and design choices / Design alternatives
• Detailed design (leaving prior chapter at high-scientific level)
• prototyping and evaluation
• DONE

Questions; where to discuss in thesis: GDPR? no PKI yet; Public key are not used yet after 25 years of trying, the problem is central servers, Self-Sovereign Identity is not explained yet in Chapter 2-ish, etc.

Prototype idea: Self-sovereign identity + personal data store is located on your smartphone. record all access patterns and modifications using blockchain technology to produce tamper-proof access logs. This requires numerous support technologies because the user is required to be truly autonomous and should never need to call any helpdesk, for instance, for issues like loss recovery, theft locking, and backups (zero system admins / user managed system).

19Feb thesis draft will be shared with CIO of health ministry of the Kingdom.

[AngelaBarrio]

Activities:

• Improving thesis draft (processing feedback last time + adding literature references + expanding Related Work chapter)

• Read student papers Blockchain engineering and Tanzania blockchain presentation

Question: how to incorporate SSI in this. thesis.pdf

[synctext]

• Explore possible use-cases
• get Android apps operational from sources (overlay, self-sovereign identity, and key recovery
• Thesis core either:
  • tamper-proof records + ZorgBerichtenBox as generic must-have building block real patient data as test (OpenMRS), authorize medical personel with access, access logging, theft locking, etc.
  • prototype for use-case (Medmij, mijnzorglog, actuele medicijn indicatie, etc.)

[synctext]

completed; in-depth study of related for the topic of:

• tamper-proof access logs
• threshold signatures

Next step with the Trustchain app. QR codes are deployed for import and export of tokens. QR codes are being used in the medical domain Emergency personnel access the emergency information by scanning the QR code with a smartphone. Commercial provider of in case of emergency info

Another project Health QR code. .

Interaction with medical data using QR-codes. Patent: Using quick response (qr) code to authenticate, access, and transfer electronic medical record information. Prior work: https://en.wikipedia.org/wiki/Health_Level_7 standard

Concrete ToDo for thesis core functionality:

• add "My medical records" in main Trustchain menu
• get random list of medication names
• expand app with export QR code of a medication name
• record in a tamper-proof access log this data export event and time

[synctext]

Schengenverklaring of medische verklaring voor medicijnen

[synctext]

Direction of thesis: implementation of a stand-alone algorithm (like algorithmics master course) not software development.

[synctext]

Clear goals for coming 3 weeks:

• There are numerous examples of hospital leaks out there 9000 records leaked
• Getting ready for next step in next sprint of wiring 2-page Problem Description
• currently keep focusing on Python-blockchain coding
  • Explore for coming week the existing examples
  • Threshold encryption and other key recovery solutions in real code libraries (Shamir, others, details of threshold in general)
  • numerous theoretical design exist for key recovery systems
  • try towards simple running code

[AngelaBarrio]

Activities last 2 weeks:

• started building mini blockchain based on The World's Tiniest Blockchain
• running code though not very spectacular
• now trying to make the blockchain actually distributed
• added small part about Barbie's hospitalization case to the problem description

[synctext]

• creating an AngelaChain from scratch
• focus on the distributed aspect, going beyond the starting point of single node example
• getting ready to add threshold encryption or other key recovery
• Found the state-of-the-art technique to improve upon
  • Strength in Numbers: Threshold ECDSA to Protect Keys in the Cloud
  • side-channel protection: private key never appears in memory
  • form of architectural+algorithmic countermeasure
  • does not assume a central trusted entity, still traditional distributed setting
  • key opportunity is to introduce blockchain-magic
  • no code online yet on their possible github page
• risk: Worcester work contains strong claims, but something was missed...
• performance on 10-core Xeon box seems sufficient, all below 100ms results.
• question to address: what can blockchain offer here?

[AngelaBarrio]

Activities:

• Read paper "Patient-centered transparency requirements for medical data sharing systems" (Spagnuelo & Lenzini, 2016)
• Expanded thesis introduction, problem statements and related work section
• Tried to 100% understand Green & Eisenbarth TECDSA paper. CONCERN: nothing about signature verification in the paper?
• Attempt to improve my blockchain, not very successful. Made an appointment with a Python/Flask wizard.

thesis_mei.pdf

[synctext]

• 3. trustless operation; no need to trust any government agency or health care technology provider
• connects to https://www.digitaleoverheid.nl/beleid/regie-op-gegevens/
• validation of database record, you start to use (signed) irrefutable records. Creation of irrefutable records is a goal-type of formulation. Similar to: https://www.sprout.nl/artikel/crypto/deze-ondernemer-ontwikkelde-een-zorgplatform-op-basis-van-blockchain-met-4-unieke
• ToDo:
  • 1-ish week to gather two or three papers with distributed secret sharing
  • read and try "to blockchain" these designs.
  • can it be implemented in Python within scope of a thesis?

[AngelaBarrio]

Activities:

• Expanded mini blockchain with Flask functionality that adds the content of a http post to the blockchain
• Read papers "Care. data and access to UK health records: patient privacy and public trust" and "Database State" about the privacy laws compliance of state databases including EMR
• Expanded thesis text in several areas
• Problem: got stuck thinking about software architecture
• Compared 3 EMR system papers, found one useful, one medium and one quite vague
• Useful one is MedRec, uses PyEthereum, maybe switch to that thesis_6_juni.pdf

[synctext]

Dedicated prototype. Completely from scratch, without any unneeded features and functionality. solve the deniability problem. Irrefutable, tamper-proof medical records. Mental note, Wolter Pieters ask as 3rd committee member? Much related work, you found 3, but very fresh and immature field.

• Todo use library for Joint Random Secret Sharing and get some implementation experience.

• form of multi-party agreement in the encrypted domain. Form a group public key and a private key of the group. Additionally can offer 2 out of 3 redundancy. Smart usage within blockchain/trustchain.

Validation of EMR entries means that an entry becomes official only when both the
patient and the health care provider have agreed to the entry. This is similar to a
person sending a registered letter and the recipient signing for delivery. The patient
cannot claim not to know the content of the entry.

• The thesis core has now been defined:

The private key is chosen by all the nodes together using Joint Random Secret Sharing
(JRSS). In this technique, each node chooses a random local secret value and
shares it with the group, using Shamir’s Secret Sharing (. Gennaro et al. 1996). Every
node adds all the shares together (including its own), resulting in the joint random
secret share. Just one of the nodes needs to introduce randomness to keep the joint
secret unknown.

• MIT media lab student work from 2016: https://ieeexplore.ieee.org/document/7573685/
• Healthcare Data Gateway

[maxvisser]

I subscribed to this post and saw that you maybe start looking at switching to PyEthereum; I see you guys are trying to do these steps:

1. Secret splitting
2. Secret fragment distribution
3. Secret fragment publishing
4. Secret reconstruction

This for me sounds like Shamir Secret Sharing; there are currently two projects in the Ethereum ecosystem working on this; Since 31st of May 2018, Kimono released their smart contract on Rinkeby for trustless secret sharing; kimono medium post: https://medium.com/@pfh/kimono-trustless-secret-sharing-using-time-locks-on-ethereum-8e7e696494d

The kimono platform uses a commit and reveal scheme that distributes the secret for each piece of data across a network of peers who share it with the public only once the time-lock is complete. it relies on Shamir Secret Sharing

uPort also has a bounty open for a implementation of shamir secret sharing (sss) in WebAssembly, that is almost complete. https://github.com/uport-project/sss-wasm/pull/2

[synctext]

Roadmap for thesis. Concrete tasks

• [x] Thesis direction and Problem Description draft - Samantha "Barbie" de Jong
• [x] Related Work - draft
• [x] initial code - Completely from scratch, without any unneeded features and functionality.
• [ ] Library Joint Random Secret Sharing
• [ ] Chapter 5: Self-sovereign identity prototype
  • related work screenshots
  • offer 2 out of 3 redundancy
• [ ] Chapter 6: Using real medical records with Standard Shamir or "Strength in Numbers: Threshold ECDSA to Protect Keys in the Cloud"
• [ ] FINAL CHAPTER: Select algorithm beyond Standard Sharmir
• [ ] Chapter 7: Implement or improve the algorthm (?by making it dstributed) {For AngelaChain}
• [ ] DONE

[AngelaBarrio]

thesis_6_juli.pdf Activities:

• Made a homepage where a user can upload a file. The user can indicate who needs to sign this file. This events gets added to the blockchain.
• The blockchain is displayed on another page
• Made a button to make a ecdsa signature using python-ecdsa library. Still needs to be linked to the actual document.
• Made some additions and improvements to the thesis draft.

[synctext]

• 4.3 Digital signature algorithm. are there also various crypto libraries to choose from?
• 2.2.1 Accountability on access are these the requirement for your prototype or research goals
• Another project: move from approving invoices, towards approving hours and try to create jointly agreed facts. Simplify administration greatly.
• mention loss recovery or out of thesis scope?
• thesis storyline?
  • tamper-proof access log
  • Irrefutable, tamper-proof medical records
• make it nice by taking inspiration and color code from others? Note the power of anatomy pictures

[AngelaBarrio]

thesis_26_juli.pdf Activities: Created basic login page. Improved prototype by adding working sign functionality. Uploader can check boxes to determine who is required to sign the event. Logged-in user can sign the event, this gets added to the blockchain as well. Made a start with the access monitoring functionality. Some small additions to thesis draft.

[synctext]

next steps

• making it distributed (e.g. multiple VMs or multiple instances with local sockets)
• define end goal or target features
  • fancy zero-knowledge proof, threshold crypto
  • Barbie storyline
  • tamper-proof access log
  • Irrefutable, tamper-proof medical records
  • create 1 or 2 screens to make full functional for thesis inclusion
  • Thesis scenario. Beyond single patient and GP: multiple specialists, GP and visit abroad
  • complex care scenario

    A 74-year-old Latino patient with a history
    of hypertension, diabetes mellitus, dyslipidemia,
    multivessel coronary and peripheral
    arterial diseases, and chronic osteomyelitis
    was recently discharged from our hospital
    after undergoing several toe amputations.
    His hospital course was complicated by
    contrast-induced nephropathy that required
    hemodialysis; heparin-induced thrombocytopenia;
    lower extremity cellulitis; and significant
    functional decline.

  • create superior version of MijnZorgLog blockchain on central Azure servers
  • focus on hour validation and registration
  • use their Figure 10 as guideline
  • prove that there is no need for smart contracts, Azure servers, and mining nodes.
  • real patient data? (from test DB mentioned above)
  • MedMij direction, persoonlijke zorg omgeving, mybeing example
• performance analysis (correctness is bottleneck, how to make graphs of that?)
• compare with requirements

[AngelaBarrio]

Activities last month:

• Created a page where the users can see and download the entries.
• Added sign-button (but does not work 100% bc it needs to be connected to the logged in user)
• Sign-events are added to the blockchain
• Made download button, but download (read) event is not added to blockchain yet
• Made blockchain semi-distributed (there is one master node which hosts the website)
• Changed login page (just finished, was needed for signing functionality).
• Some additions to thesis draft. Tried to find out how existing systems do their logging but they don't respond to my emails.

thesis_3_sept.pdf

[synctext]

• "This problem cannot be solved with a smart algorithm: it must be brute forced." add nuance
• "This problem cannot be solved with a smart algorithm: it must be brute forced. A consequence of this is the effectiveness against Sybil attacks. The high costs of creating pseudonymous identities prevents cheap attacks (Vukoli´c 2015). A drawback is that it is (obviously) computationally intensive, and therefore uses much energy, which is an unnecessary strain on the environment" storyline switches from brute-force, to Sybil, and back.
• Design choices or System architecture and design space.
• who serves the webpages is an architecture or implementation issue
• Todo: how to increase visibility of the engineering hours of prototyping?
• others also failed to find a lib. Seems a fancy lib to mention: https://petlib.readthedocs.io/en/latest/
  • https://eprint.iacr.org/2016/013
  • https://eprint.iacr.org/2017/552
• key issue "5.3.1 Using threshold signatures", very hidden.
• Solid progress, so far. Thesis is growing. FINAL CHAPTER... What is the key contribution of thesis? Prove that is solves the Barbie problem? Threshold in a medical (emergency) access scenario? Or creation of efficient threshold EC sigs in the distributed prototype? Performance analysis for 1 million patients? Real-time updates from any medical professional and full replication of your patient data?
  • build storyline in your final chapter, brainstorm:
  • Doctor consults your medical file to formulate treatment plan ( you can read this in log)
  • outcome medical test notification ( you can read this in log)
  • approve renewal medication usage ( you can read this in log)
  • emergency room checks your allergy for penicillin ( you can read this in log)
• Becomes part-time thesis

[AngelaBarrio]

Activities last 3 weeks:

• everything works except for retrieving blockchain from another node
• made website ok looking
• changed and added some parts in thesis draft thesis-24-sept.pdf

[synctext]

Discovered initiatives:

• https://en.wikipedia.org/wiki/Integrating_the_Healthcare_Enterprise
• used a lot at Erasmus Hospital: https://en.wikipedia.org/wiki/Health_Level_7

Feedback:

• Chapter 2, intro line. For instance, "the central problem of this thesis is a new method of access to medical files using tamper-proof logging, non-repudiation and guaranteed patient informing. The patient owns all data in our model and records all access by medical staff, instead of trying to create a fault-free security moat. Ease of access during an emergency is key to usability in the real world."
• "2.1 Barbie’s medical records in HiX" Call it the Barbie '2.1 leading thesis use-case'; it then has more emphasis
• Single mention in 4.1 of magical essence "auditable access trail"
• use Medrec scholar citation to find additional related work
  • "Secure and Trustable Electronic Medical Records Sharing using Blockchain"
  • "A Blockchain-based Approach to the Secure Sharing of Healthcare"..
• shamelessly be inspired by their scenarios: "Scenario 1: Primary Patient Care. Using blockchain technology for primary patient care can help to address the following problems of the current healthcare systems. 1) A patient often visits multiple disconnected hospitals. He has to keep the history of all his data and maintain the updates. This leads to the situation when required information may not be available."
• Figure 4.1 [ToDo Citations], Fig 4.2,..
• Make this more prominent as, possibly, section 5.1 Patient Data Ownership
• plus Who Owns the Data? Open Data for Healthcare
• 5.2 "Analysis of functionality and choices of current systems"
• unnamed page 21 table: No. 1 property "maturity level" "screenshots-only", "prototype exists"
• Stars on GitHub (16-07-18), "Github community visibility", "540 stars"
• 6.1 : event-driven architecture, blockchain primitives, user-experience, tokens and password management (e.g. UZI pas)
• use-cases, own chapter or inside a certain chapter...
• chapter 7, giving patients data ownership represents a complete reorganization of medical practices. change data governance (non-TBM version of term).

[synctext]

Performance analysis:

• run in cmdline scripted form
• enhance prototype it does something with x-amount of people in a fixed scenario
• X-axis, increase number of patients, doctors from 1 to 30 (or try 50?)
• Y-Axis, determine CPU usage, memory, number of messages,...

Think about more decentralised approach. Can every medical institute run their own portal for login and coordination?

[AngelaBarrio]

Activities:

• implemented kind of Proof of Elapsed Time consensus

• coducted some experiments for system without consensus

thesis-21-nov.pdf